The tls_session_ticket_cipher documentation says that the
default cipher for TLS session tickets is aes-256-cbc, but the
implemented default was aes-128-cbc. Note that TLS session ticket
keys are rotated after 1/2 hour, to limit the impact of attacks
on session ticket keys.